-->

  SecPod ID: 10087                                            Status: Public Report
  Novell NetWare ApacheAdmin Security Bypass Vulnerability.   Severity: High
                                                              Release Date: 12-12-2008
                                                              CVSS Base Score: 10.0 (AV:N/AC:L/Au:NR/C:C/I:C/A:C)
                                                              CVSS Temporal Score  = 7.4
                                                              Impact Level:  Application

  Affected Software/OS/Device:
  - Novell NetWare 6.5 Support Pack 1-7

  OpenVAS Plugin ID:
  Snort Signature ID:
  OVAL ID: 

  Vulnerability Insight:

  Overview:
  Novell NetWare is prone to Authentication Security Bypass Vulnerability.

  Description:
  This flaw is caused, as password to the ApacheConsole is no longer required
  after installing OEL2 Linux Server into a tree running on NetWare 6.5 which
  can cause alteration of configurations and settings in Apache Server.

  Impact:
  Successful exploitation will let the attacker change the configurations of the
  running apache webserver and can compromise a complete running web server
  as well.

  CVSS Score Report:
      ACCESS_VECTOR = NETWORK
      ACCESS_COMPLEXITY = LOW
      AUTHENTICATION = NOT_REQUIRED
      CONFIDENTIALITY_IMPACT = COMPLETE
      INTEGRITY_IMPACT = COMPLETE
      AVAILABILITY_IMPACT = COMPLETE
      EXPLOITABILITY = UNPROVEN
      REMEDIATION_LEVEL = OFFICIAL_FIX
      REPORT_CONFIDENCE = CONFIRMED
      CVSS Base Score = 10.0 (AV:N/AC:L/Au:NR/C:C/I:C/A:C)
      CVSS Temporal Score = 7.4
      Risk factor = High

  Fix:
  Apply the support pack 8 to the server,
  http://www.novell.com/products/openenterpriseserver

  References: 
  http://www.novell.com/support/viewContent.do?externalId=7001907
  http://secunia.com/Advisories/32989

Home          Corporate          Resources          Report Security Bug          Diary